$ rpki-client -vvf repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa File: 3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa (raw, json) Hash identifier: 1fFCeWUuqh8Cb3Sv5grm5RDaXRUMiRw3OIxuWQiBMNw= Subject key identifier: 2C:FC:B2:EE:79:18:7D:0C:87:A6:D3:7C:FF:CC:F7:33:F4:DE:6E:B1 Certificate issuer: /CN=CEE21891B6F5736FAA7D9BED383243F3DF381781 Certificate serial: 53A172E554E620A24D68DBC905DE7B2EB04158B6 Authority key identifier: CE:E2:18:91:B6:F5:73:6F:AA:7D:9B:ED:38:32:43:F3:DF:38:17:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEE21891B6F5736FAA7D9BED383243F3DF381781.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa Signing time: Sun 02 Jun 2024 03:01:01 +0000 ROA not before: Sun 02 Jun 2024 02:56:01 +0000 ROA not after: Sun 01 Jun 2025 03:01:01 +0000 asID: 142322 IP address blocks: 103.168.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/CEE21891B6F5736FAA7D9BED383243F3DF381781.crl rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/CEE21891B6F5736FAA7D9BED383243F3DF381781.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEE21891B6F5736FAA7D9BED383243F3DF381781.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:a1:72:e5:54:e6:20:a2:4d:68:db:c9:05:de:7b:2e:b0:41:58:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEE21891B6F5736FAA7D9BED383243F3DF381781 Validity Not Before: Jun 2 02:56:01 2024 GMT Not After : Jun 1 03:01:01 2025 GMT Subject: CN=2CFCB2EE79187D0C87A6D37CFFCCF733F4DE6EB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:08:37:b4:c2:75:b4:a0:99:ba:1c:75:b5:dd: 2b:d4:15:45:7e:79:03:20:ff:40:73:32:b6:df:1b: 92:85:aa:67:f6:ee:94:95:f1:36:03:d2:58:3b:69: df:dc:0b:ae:2c:d4:02:bb:3f:29:ca:08:ec:5a:a7: 5b:fb:06:99:b9:5d:70:2e:04:4a:ba:fd:9b:c3:89: 93:bb:1a:bf:a8:3b:85:ea:35:ba:63:f3:0c:89:cd: 85:2c:e8:82:4c:9e:70:a1:12:5f:a5:57:26:8a:70: 3a:51:11:d2:32:a5:73:e3:aa:d7:98:02:1e:fa:70: 79:4b:b0:cb:7d:1b:7f:79:d2:d6:cf:c8:8b:56:08: 18:a8:fe:7d:5a:0f:15:c9:aa:16:62:c3:51:35:0a: 75:3a:c4:f8:d4:e9:12:e7:8e:e5:a7:ee:1a:97:61: 69:c4:ce:0e:f3:9f:08:cc:55:c4:68:dc:35:1c:c3: d5:bc:65:be:49:2d:96:c8:a5:47:8a:c8:13:da:8e: d3:35:0d:3b:c5:f4:38:59:3a:d3:d5:7d:1e:4d:f9: d6:ac:cd:e5:82:cf:f9:9f:c5:0a:7e:43:cf:11:f4: 3c:34:59:07:a4:33:32:c7:de:25:a1:7a:1f:4a:67: 15:44:11:06:09:5d:b2:6d:55:e7:e8:a2:15:d8:49: 58:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:FC:B2:EE:79:18:7D:0C:87:A6:D3:7C:FF:CC:F7:33:F4:DE:6E:B1 X509v3 Authority Key Identifier: keyid:CE:E2:18:91:B6:F5:73:6F:AA:7D:9B:ED:38:32:43:F3:DF:38:17:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/CEE21891B6F5736FAA7D9BED383243F3DF381781.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEE21891B6F5736FAA7D9BED383243F3DF381781.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.186.0/23 Signature Algorithm: sha256WithRSAEncryption 86:87:d0:3f:fe:c4:4d:88:5a:f8:a0:b0:17:a9:01:0d:31:11: 5e:71:37:bd:14:89:cd:c5:52:47:d5:4b:b0:e4:35:e1:92:87: 53:ad:6e:09:ed:6b:a9:98:a3:e9:75:54:c5:4e:7e:6d:23:d5: a2:56:d1:5e:1f:24:bf:80:81:f5:04:b8:a3:11:b6:e2:96:e9: b6:61:83:3b:bd:85:58:f0:de:f2:59:65:35:69:33:59:5e:e2: 69:44:26:67:fe:40:76:80:88:b4:a2:5b:7a:81:18:ee:67:09: 60:3f:67:a4:fb:09:89:31:79:15:c8:b6:29:f4:2b:e8:df:67: 28:e1:b0:a6:f4:9c:d4:46:30:de:23:a0:ba:46:38:b1:5b:23: 00:e7:de:0e:44:f6:0d:ab:0b:6a:96:59:d5:e2:d2:b2:ae:01: 3a:1c:fa:90:0a:68:fb:c8:35:ee:ff:d9:e7:67:9b:83:f8:8d: 58:db:8b:38:d5:81:aa:bd:3c:22:e7:45:13:7b:1e:6c:11:08: 07:db:39:b3:1e:97:43:09:eb:d6:61:f3:db:09:64:8c:c1:d5: c6:81:a4:4d:21:16:1f:0d:44:78:0e:81:41:c6:0a:4e:df:4d: 58:74:4a:72:d7:7f:2d:11:7b:97:a4:82:78:12:be:46:9e:09: b3:74:de:48 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU6Fy5VTmIKJNaNvJBd57LrBBWLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VFMjE4OTFCNkY1NzM2RkFBN0Q5QkVEMzgzMjQzRjNE RjM4MTc4MTAeFw0yNDA2MDIwMjU2MDFaFw0yNTA2MDEwMzAxMDFaMDMxMTAvBgNV BAMTKDJDRkNCMkVFNzkxODdEMEM4N0E2RDM3Q0ZGQ0NGNzMzRjRERTZFQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7CDe0wnW0oJm6HHW13SvUFUV+ eQMg/0BzMrbfG5KFqmf27pSV8TYD0lg7ad/cC64s1AK7PynKCOxap1v7Bpm5XXAu BEq6/ZvDiZO7Gr+oO4XqNbpj8wyJzYUs6IJMnnChEl+lVyaKcDpREdIypXPjqteY Ah76cHlLsMt9G3950tbPyItWCBio/n1aDxXJqhZiw1E1CnU6xPjU6RLnjuWn7hqX YWnEzg7znwjMVcRo3DUcw9W8Zb5JLZbIpUeKyBPajtM1DTvF9DhZOtPVfR5N+das zeWCz/mfxQp+Q88R9Dw0WQekMzLH3iWheh9KZxVEEQYJXbJtVefoohXYSVhdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULPyy7nkYfQyHptN8/8z3M/TebrEwHwYDVR0j BBgwFoAUzuIYkbb1c2+qfZvtODJD8984F4EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWYwMDMxZS0yYTllLTQ3Y2EtOTI4My00MGU5MjdlMzU5OTMvMC9DRUUyMTg5MUI2 RjU3MzZGQUE3RDlCRUQzODMyNDNGM0RGMzgxNzgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VFMjE4OTFCNkY1NzM2RkFBN0Q5QkVEMzgzMjQzRjNERjM4 MTc4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZjAwMzFlLTJhOWUtNDdjYS05 MjgzLTQwZTkyN2UzNTk5My8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqLowDQYJ KoZIhvcNAQELBQADggEBAIaH0D/+xE2IWvigsBepAQ0xEV5xN70Uic3FUkfVS7Dk NeGSh1Otbgnta6mYo+l1VMVOfm0j1aJW0V4fJL+AgfUEuKMRtuKW6bZhgzu9hVjw 3vJZZTVpM1le4mlEJmf+QHaAiLSiW3qBGO5nCWA/Z6T7CYkxeRXItin0K+jfZyjh sKb0nNRGMN4joLpGOLFbIwDn3g5E9g2rC2qWWdXi0rKuAToc+pAKaPvINe7/2edn m4P4jVjbizjVgaq9PCLnRRN7HmwRCAfbObMel0MJ69Zh89sJZIzB1caBpE0hFh8N RHgOgUHGCk7fTVh0SnLXfy0Re5ekgngSvkaeCbN03kg= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org